CVE-2012-1606 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Backend component in TYPO3 4.4.0 through 4.4.13 4.5.0 through 4.5.13 4.6.0 through 4.6.6 4.7 and 6.0 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://osvdb.org/80760 http://secunia.com/advisories/48622 http://secunia.com/advisories/48647 http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-001/ http://www.debian.org/security/2012/dsa-2445 http://www.openwall.com/lists/oss-security/2012/03/30/4 http://www.securityfocus.com/bid/52771

Share on: